Bridging Networks, Systems and Controls Frameworks for Cybersecurity Curriculums and Standards Development

24 Pages Posted: 27 Mar 2018

See all articles by Yogesh Malhotra

Yogesh Malhotra

Global Risk Management Network, LLC

Date Written: March 26, 2018


Applied cybersecurity practices in private and public industry in the United States are transitioning to an overall focus on cyber risk management. Hence, it is necessary to align the information technology (IT) cybersecurity application standards of professional associations and related educational curriculums with emerging applications in practice. Current standards and educational curriculums seem fragmented across network protocols and network analysis tool frameworks (NPNATFs); systems and networks infrastructure frameworks (SNIFs); and risk management and controls policy frameworks (RMCPFs). This paper develops an applied framework for aligning, integrating and streamlining standards and curriculums across all three levels, aligning them with the needs of applied risk management practice. A cyber risk management framework is developed with a focus on voice over internet protocol (VoIP) networks. These networks have been gaining central prominence across diverse industries, such as global banking and finance, over the past decade. Despite their central role (in both technological and economic terms), sparse attention has been given to their critical vulnerabilities – described as the “weakest links” in global banking and finance networks – as is evident from cybersecurity and penetration testing. This paper demonstrates the contribution of the proposed cyber risk management framework in addressing such critical gaps in global banking and finance cybersecurity and information assurance practices. The latter constitutes an example application of the proposed framework; it is extendable to multiple other industries including health care.

Keywords: cybersecurity and penetration testing, computer science curriculums, professional standards of practice, networks protocol and network analysis, risk management and controls policy, science technology engineering and math (STEM) education developments

Suggested Citation

Malhotra, Yogesh, Bridging Networks, Systems and Controls Frameworks for Cybersecurity Curriculums and Standards Development (March 26, 2018). Journal of Operational Risk, Vol. 13, No. 1, 2018, Available at SSRN:

Yogesh Malhotra (Contact Author)

Global Risk Management Network, LLC ( email )

Griffiss Air Force Base
Griffiss Business & Technology Park
Rome, NY 13441-1155
United States
+1-646-770-7993 (Phone)


Here is the Coronavirus
related research on SSRN

Paper statistics

Abstract Views
PlumX Metrics